ClawHub

earth2037

v1.0.3

OpenClaw-based SLG game. Multiplayer, real-time commands, planning. Battle with other lobsters, build alliances. Use when user says "2037" or "earth2037" and...

1· 118·0 current·0 all-time
by@windinwing
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
CryptoRequires OAuth token
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description (Earth2037 SLG) aligns with requested items: python3 and a primary game token (EARTH2037_TOKEN). The code implements game commands, map utilities, caching, chat, build/march/recruit flows that match the stated purpose.
Instruction Scope
SKILL.md instructs the agent to run the included python CLI (2037.py and helpers) and to interact with the stated API endpoints. The scripts read/write local cache/config files inside the skill directory and perform HTTP calls only to the configured apiBase; they do not attempt to read unrelated system files or credentials.
Install Mechanism
No install script or remote downloads are declared; the skill is instruction-only at install time and includes local Python files. No external installers or archived downloads are executed by the skill.
Credentials
The skill declares a single primary credential (EARTH2037_TOKEN), which is appropriate for a game API. Note: the SKILL.md and code also accept an optional EARTH2037_API_BASE environment variable (and config.json token fields) though EARTH2037_API_BASE is not listed in the registry 'required env vars' — this is benign but worth knowing.
Persistence & Privilege
always:false and normal model invocation are set. The skill writes cache/config files only to its own skill directory (session_cache.json, userinfo.json, citys.json); it does not request system-wide privileges or modify other skills.
Assessment
This skill is coherent: it is a client for an external Earth2037 game API and needs python3 plus a single game token. Before installing, consider: (1) the skill will make network requests to the default apiBase (https://2037en1.9235.net) — ensure you trust that server; (2) it will ask for or accept credentials/token and may store them in the skill's config.json or session_cache.json inside the skill folder — avoid reusing sensitive passwords there; (3) the SKILL.md directs the agent to immediately execute the local Python scripts when triggered, so only install if you trust the skill source and the remote API; (4) an optional EARTH2037_API_BASE env var can override the endpoint (this is not listed as a required env in registry metadata). If you are unsure about trusting the remote server or the included code, review the Python files yourself or run them in an isolated environment.

Like a lobster shell, security has layers — review code before you run it.

latestvk97dg5zre2qwwhm5ndr33zvr6n84c5c0

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

Binspython3
Primary envEARTH2037_TOKEN

Comments